VYPR
Unrated severityNVD Advisory· Published Mar 9, 2009· Updated Jun 16, 2026

CVE-2009-0849

CVE-2009-0849

Description

Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to (1) execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or (2) cause a denial of service (daemon crash) on Windows platforms via a long username field during backup domain authentication, related to nnwindtb.dll. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Novastor/Novanet2 versions
    cpe:2.3:a:novastor:novanet:12:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:novastor:novanet:12:*:*:*:*:*:*:*
    • (no CPE)range: 12

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.